Securing Cloud Applications Using Windows Azure Access Control

Similar documents
CLAIMS-BASED IDENTITY FOR WINDOWS

PROVIDING SINGLE SIGN-ON TO AMAZON EC2 APPLICATIONS FROM AN ON-PREMISES WINDOWS DOMAIN

Ping Identity, Euro Cloud award entry

Claims-based security and multitenancy using Windows Azure Access Control Service

Managing trust relationships with multiple business identity providers (basics) 55091A; 3 Days

The Top 5 Federated Single Sign-On Scenarios

MS 10978A Introduction to Azure for Developers

Integration Overview. Web Services and Single Sign On

Masdar Institute Single Sign-On: Standards-based Identity Federation. John Mikhael ICT Department

Single-Sign-On between On-Premises and the Cloud: Leveraging Windows Azure Active Directory to authenticate custom solutions and Apps

IT Exam Training online / Bootcamp

Enabling Federation and Web-Single Sign-On in Heterogeneous Landscapes with the Identity Provider and Security Token Service Supplied by SAP NetWeaver

Identity. Provide. ...to Office 365 & Beyond

Building Secure Applications. James Tedrick

Flexible Identity Federation

Federated single sign-on (SSO) and identity management. Secure mobile access. Social identity integration. Automated user provisioning.

Course 10978A Introduction to Azure for Developers

Application Migration Best Practices. Gregory Shepard Senior Consultant InCycle Software

Developing Microsoft Azure Solutions 20532A; 5 days

Copyright: WhosOnLocation Limited

Microsoft Introduction to Azure for Developers

Samsung KNOX EMM Authentication Services. SDK Quick Start Guide

enterprise 'jroic'ssiona!

Get a Whiff of WIF Windows Identity Foundation. Keith Brown

OpenLogin: PTA, SAML, and OAuth/OpenID

Agenda. How to configure

SAML SSO Configuration

USING FEDERATED AUTHENTICATION WITH M-FILES

SINGLE & SAME SIGN-ON ASPECTS

The saga of WebFTS and Federated Identity

10978A: Introduction to Azure for Developers

Developing Secure Mobile Applications from SharePoint Presented by Seyfarth Shaw LLP and Something Digital

This module provides an overview of service and cloud technologies using the Microsoft.NET Framework and the Windows Azure cloud.

Introduction to Azure for Developers

FTP-Stream Integrating Active Directory Federation Services

Developing Microsoft Azure Solutions

The increasing popularity of mobile devices is rapidly changing how and where we

HP Software as a Service

managing SSO with shared credentials

SAP NetWeaver Fiori. For more information, see "Creating and enabling a trusted provider for Centrify" on page

MOC DEVELOPING WINDOWS AZURE AND WEB SERVICES

Single Sign On. SSO & ID Management for Web and Mobile Applications

Microsoft Azure for IT Professionals 55065A; 3 days

AND SUN OPENSSO MICROSOFT GENEVA SERVER ENABLING UNPRECEDENTED COLLABORATION ACROSS HETEROGENEOUS IT ENVIRONMENTS. White Paper May 2009.

The Challenges of Web single sign-on

Microsoft SQL Server Review

The Florida Department of Education s Single Sign-On Solution. July - August 2012

Client. Applications. Middle Tier. Database. Infrastructure. Leading Vendors

Symplified I: Windows User Identity. Matthew McNew and Lex Hubbard

Get Success in Passing Your Certification Exam at first attempt!

IBM Tivoli Federated Identity Manager

PRACTICAL IDENTITY AND ACCESS MANAGEMENT FOR CLOUD - A PRIMER ON THREE COMMON ADOPTION PATTERNS FOR CLOUD SECURITY

Egnyte Single Sign-On (SSO) Installation for OneLogin

SAP NetWeaver AS Java

The Role of Identity Enabled Web Services in Cloud Computing

HOW MICROSOFT AZURE AD USERS CAN EMPLOY SSO

Course Outline. Microsoft Azure Fundamentals Course 10979A: 2 days Instructor Led. About this Course. Audience Profile. At Course Completion

Federated Identity and Single Sign-On using CA API Gateway

Security As A Service Leveraged by Apache Projects. Oliver Wulff, Talend

Configuring Single Sign-on from the VMware Identity Manager Service to ServiceNow

McAfee Cloud Identity Manager

SAML AS AN SSO STANDARD FOR CUSTOMER IDENTITY MANAGEMENT. How to Create a Frictionless, Secure Customer Identity Management Strategy

Microsoft Dynamics CRM Event Pipeline

INTRODUCING THE WINDOWS AZURE PLATFORM

OPENIAM ACCESS MANAGER. Web Access Management made Easy

For details about using automatic user provisioning with Salesforce, see Configuring user provisioning for Salesforce.

Enterprise Mobile Web Development. Robert Altland Principal Consultant, Mobility Neudesic, LLC

HP Software as a Service. Federated SSO Guide

How To Use Saml 2.0 Single Sign On With Qualysguard

Configuring. SuccessFactors. Chapter 67

The Essential OAuth Primer: Understanding OAuth for Securing Cloud APIs

Configuring Salesforce

InRule. The Premier BRMS for the Microsoft Platform. Benefits THE POWER OF INRULE. Key Capabilities

IBM Tivoli Federated Identity Manager V6.2.2 Implementation. Version: Demo. Page <<1/10>>

Extend and Enhance AD FS

Enable Your Applications for CAC and PIV Smart Cards

Configuring SuccessFactors

UNIVERSITY OF COLORADO Procurement Service Center INTENT TO SOLE SOURCE PROCUREMENT CU-JL SS. Single Sign-On (SSO) Solution

Single Sign-On from Active Directory to a Windows Azure Application

EXECUTIVE VIEW. EmpowerID KuppingerCole Report. By Peter Cummings October By Peter Cummings

Collaborating with External Users

Configuring Single Sign-on from the VMware Identity Manager Service to AirWatch Applications

Centrify Mobile Authentication Services for Samsung KNOX

Microsoft Certified Applications Developer (MCAD) exams

McAfee Cloud Identity Manager

Easy as 1-2-3: The Steps to XE. Mark Hoye Services Portfolio Consultant

SAML-Based SSO Solution

Centrify Mobile Authentication Services

Implementation Guide SAP NetWeaver Identity Management Identity Provider

OpenSSO: Cross Domain Single Sign On

Microsoft Office 365 Using SAML Integration Guide

Course 20532B: Developing Microsoft Azure Solutions

Getting Started with AD/LDAP SSO

SP-initiated SSO for Smartsheet is automatically enabled when the SAML feature is activated.

Connected Data. Connected Data requirements for SSO

CLOUD COMPUTING & WINDOWS AZURE

EXECUTIVE VIEW. SecureAuth IdP. KuppingerCole Report

Configuring. SugarCRM. Chapter 121

McAfee Cloud Identity Manager

This three-day instructor-led course provides students with the tools to extend Microsoft Dynamics CRM 4.0.

Transcription:

Securing Cloud Applications Using Windows Azure Access Control January 20, 2012 Keith Franklin Director of Cloud and.net Services 2009 SPR Companies. All rights reserved.

Table of Contents MPS Partners Overview Claims based Identity. What is it? Windows Identity Framework (WIF) WIF and Windows Azure Securing a Web Applications using Windows Azure Access Control Service

Who We Are MPS Partners is a Microsoft Gold Certified Managed Partner with deep expertise in defining and deploying solutions based on Microsoft technology We focus in a few key areas: Collaboration and enterprise content management Business Intelligence Integration of the Microsoft toolset with diverse technology landscapes and the cloud We are especially known for having this expertise within accounts that run SAP Page 3

Our Background Founded in 2006, MPS Partners is Microsoft s 2010 Central Region Partner of the Year. We have earned the distinction of being a Microsoft Gold Managed Partner an elite designation within the Microsoft partner community. Our experienced staff an leadership team are business people first that focus on bringing valuable business solutions to market. We are part of SPR Family of Companies, a 35- year-old professional services firm headquartered in the Willis Tower in Chicago, IL.

Connected Business Application Platform and Integration.NET and Cloud Solutions BizTalk Integration Solutions Enterprise Service Bus Cloud Integration Supply Chain Solutions Advanced.NET Solutions Windows Azure Development Mobile Solutions Providing Technology solutions that magnify the value of previous IT investments and enhance communication with business partners. Page 5

Table of Contents MPS Partners Overview Claims based Identity. What is it? Windows Identity Framework (WIF) WIF and Windows Azure Securing a Web Applications using Windows Azure Access Control Service

Claims based Identity. What is it? Identity For sake of this discussion think of Identities as Users Tokens A bunch of bytes that represents an Identity Usually XML in the form of Security Assertion Markup Language (SAML) Claims Represent something about the Identity (Name, Age, Position, etc.) I claim that I am Keith Franklin I claim that I am 45 Contained within a Token STS Security Token Service Software that issues Tokens

Claims based Identity. What is it? Identity Provider Combination of a STS and an Account/Attribute Store Examples: Active Directory Federation Services 2.0 Windows Live ID, Facebook, Yahoo, Google Federation Provider Service that takes multiple trusted or untrusted Identity Providers and produce a trusted Identity Token to an application Examples: Windows Azure AppFabric Access Control - Cloud Active Directory Federations Services 2.0 On Premise Identity Library Windows Identity Foundation

Table of Contents MPS Partners Overview Claims based Identity. What is it? Windows Identity Framework (WIF) WIF and Windows Azure Securing a Web Applications using Windows Azure Access Control Service

Windows Identity Framework Programming Model Software Development Kit (SDK) Provides pre-built.net security logic Visual Studio Tools/Wizards Middleware Technology for building Claims aware solutions Allows for Applications to be built that are unaware of how they are secured. When un-authenticated visitor arrives the Middleware steps in and authenticates the user and upon success the user and the users security token is redirected to the intended application. Page 10

Table of Contents MPS Partners Overview Claims based Identity. What is it? Windows Identity Framework (WIF) WIF and Windows Azure Securing a Web Applications using Windows Azure Access Control Service

WIF and Windows Azure Windows Azure Access Control Service (ACS) Supports Web Application single sign-on (SSO) WS-Federation Federation for SOAP and REST Web Services using WS-Trust and Oauth Web Based Management Portal Odata-based management service for configuring and managing the service WIF provides the plumbing for your applications to integrated with ACS Page 12

Page 13 Azure Access Control Service

Authenticating Users from Web and Social Providers

ACS sign on step by step 1. User enters page address in a browser 2. Page responds to browser to redirect to ACS 3. Browser asks ACS for a Token 4. ACS responds with list of Token types to user 5. User logs in to Identity Provider 6. Identity Provider returns Token to browser 7. Browser presents Identity Provider Token to ACS 8. ACS returns an ACS Token to browser 9. Browser redirects back to original page address with ACS Token 10.Page responds accordingly Page 15

Table of Contents MPS Partners Overview Claims based Identity. What is it? Windows Identity Framework (WIF) WIF and Windows Azure Securing a Web Applications using Windows Azure Access Control Service

Securing a Web Applications using Windows Azure Access Control Service Demo Use WIF and Windows Azure Access Control to secure a Web Role (ASP.NET Web Site) Page 17

Closing Thoughts Additional Information Azure SDK http://www.microsoft.com/windowsazure/sdk/ Azure Platform Training Kit http://www.microsoft.com/download/en/details.aspx?displaylang =en&id=8396 Microsoft Windows Azure Development Cookbook by Neil Mackenzie Windows Identity Foundation Simplifies User Access for Developers http://msdn.microsoft.com/en-us/security/aa570351 Need assistance with Azure contact MPS Partners, LLC Keith.Franklin@MPSPartners.Com Page 18

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information